LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for July 24, 2008

Tracing: no shortage of options

Interview: Wind River's John Bruggeman

LWN.net Weekly Edition for July 17, 2008

Handling kernel security problems

Printable page
Weekly edition Kernel Security Distributions Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ

Shared subtrees

Shared subtrees

Posted Nov 10, 2005 14:58 UTC (Thu) by im14u2c (subscriber, #5246)
In reply to: Shared subtrees by nix
Parent article: Shared subtrees

How about "any directory the user owns, or has write access to but does not have the sticky bit set"? Quick refresher on the sticky bit from the chmod(1) manpage: 

STICKY DIRECTORIES
       When  the sticky bit is set on a directory, files in that directory may
       be unlinked or renamed only by root or their owner.  Without the sticky
       bit,  anyone able to write to the directory can delete or rename files.
       The sticky bit is commonly found on directories, such as /tmp, that are
       world-writable.

(Log in to post comments)

Shared subtrees

Posted Nov 11, 2005 11:05 UTC (Fri) by nix (subscriber, #2304) [Link]

Yes; that would mean that only world-writable directories (which strike me as a really bad idea) would be `problematic'.

(And for those of us giving each user their own /tmp, well, we can turn the sticky bit off and fix up the permissions so that only that user can write to it :) )

Shared subtrees

Posted Nov 12, 2005 0:06 UTC (Sat) by elanthis (subscriber, #6227) [Link]

If the rule is "any directory the user *owns*" then world-writable directories wouldn't be a big problem.

Copyright © 2008, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds
Powered by Rackspace Managed Hosting.